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DETAILED ACTION 

1. Claims 1-11 and 13-28 have been examined. 

Claim Rejections - 35 USC § 103 

2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

A patent may not be obtained though the invention is not identically disclosed or described as set forth in section 
102 of this title, if the differences between the subject matter sought to be patented and the prior art are such that the 
subject matter as a whole would have been obvious at the time the invention was made to a person having ordinary skill in 
the art to which said subject matter pertains. Patentability shall not be negatived by the manner in which the invention was 
made. 

3. Claims 1-1 1, 13, and 19-28 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Pitchenik et al. U.S. Pat. No. 6397328 (hereinafter Pitchenik) in view of Eberhard U.S. Pat. 
No. 5473689 (hereinafter Eberhard). 

4. As per claim 1, Pitchenik discloses a method of authenticating computing devices on a 
communications network comprising the steps of : receiving a first challenge from a computing 
device, wherein said first challenge comprises an encrypted first random number and a unique 
identifier associated with said computing device (Pitchenik: column 2 line 40 - column 3 line 28; 
column 4 lines 32 - 67); obtaining a first secret cryptographic key associated with said unique 
identifier (Pitchenik: column 2 line 40 - column 3 line 28; column 4 lines 32 - 67); generating a 
second random number (Pitchenik: column 2 line 40 - column 3 line 28; column 4 lines 32 - 
67); decrypting said first random number with said first secret cryptographic key (Pitchenik: 
column 2 line 40 - column 3 line 28; column 4 lines 32 - 67); encrypting said second random 
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number with said first secret cryptographic key (Pitchenik: column 2 line 40 - column 3 line 28; 
column 4 lines 32 - 67); and transmitting a second challenge to said computing device, wherein 
said second challenge comprises said encrypted said second random number (Pitchenik: column 
2 line 40 - column 3 line 28; column 4 lines 32 - 67). Pitchenik does not explicitly disclose 
generating a second random number where the second random number is different from the first 
random number. However, Eberhard discloses both devices generate its own random number and 
transmit random numbers to each other (Eberhard: column 1 line 66 - column 2 line 4 and 
column 3 line 45 - column 4 line 2). It would have been obvious to one having ordinary skill in 
the art to generate different random numbers when two devices try to authenticate each other. 
Therefore, it would have been obvious to one having ordinary skill in the art at the time of 
applicant's invention to combine the teachings of Eberhard within the system of Pitchenik 
because using two random numbers allows both devices to exclusively authenticate each other. 

5. As per claim 19, Pitchenik discloses a method of authenticating computing devices on a 
communications network comprising the steps of receiving a first challenge from a computing 
device, wherein said first challenge comprises a first random number and a unique identifier 
associated with said first secret cryptographic key (Pitchenik: column 2 line 34 - column 3 line 
3); and transmitting a second challenge to said computing device, wherein said second challenge 
comprises said encrypted first random number and said second random number (Pitchenik: 
column 2 line 34 - column 3 line 3). Pitchenik does not explicitly disclose generating a second 
random number where the second random number is different from the first random number. 
However, Eberhard discloses both devices generate its own random number and transmit random 



Application/Control Number: 10/679,371 Page 4 

Art Unit: 2131 

numbers to each other (Eberhard: column 1 line 66 - column 2 line 4 and column 3 line 45 - 
column 4 line 2). It would have been obvious to one having ordinary skill in the art to generate 
different random numbers when two devices try to authenticate each other. Therefore, it would 
have been obvious to one having ordinary skill in the art at the time of applicant's invention to 
combine the teachings of Eberhard within the system of Pitchenik because using two random 
numbers allows both devices to exclusively authenticate each other. 

6. As per claim 2 and 20, Pitchenik as modified discloses the method of claims 1 and 19 
respectively. Pitchenik as modified further discloses wherein said unique identifier is a serial 
number of a physical token installed at said computing device (Pitchenik: column 3 line 60 - 
column 4 line 10: the identification number and associated key within the device). 

7. As per claim 3 and 21 , Pitchenik as modified discloses the method of claims 2 and 20 
respectively. Pitchenik as modified ftirther discloses wherein said step of obtaining a first secret 
cryptographic key comprises the step of retrieving a pre-stored record associated with said serial 
number, wherein said record comprises said first secret cryptographic key (Pitchenik: column 2 
line 40 - column 3 line 28; column 4 lines 32 - 67; column 3 line 60 - column 4 line 10: the 
keys are stored in the device and the host PC respectively). 

8. As per claim 4 and 22, Pitchenik as modified discloses the method of claims 3 and 21 
respectively. Pitchenik as modified further discloses wherein said step of obtaining a first secret 
cryptographic key comprises the step of receiving a key database file comprising a number of 
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records, wherein each record is associated with a unique physical key token and comprises a 
unique secret cryptographic key and a unique serial number (Pitchenik: column 2 hne 40 - 
column 3 line 28; column 4 lines 32 - 67; column 3 line 60 - column 4 line 10: the keys are 
stored in the device and the host PC respectively). 

9, As per claim 5 and 23, Pitchenik as modified discloses the method of claims 4 and 22 
respectively. Pitchenik further discloses wherein said unique secret cryptographic key is created 
from a random number generated at initialization of said token (Pitchenik: column 3 hne 60 - 
column 4 line 24). 

10, As per claim 6 and 24, Pitchenik as modified discloses the method of claims 1 and 19 
respectively. Pitchenik as modified further discloses the method comprising the steps of 
decrypting said first challenge with a network receive cryptographic key; and encrypting said 
second challenge with a network send cryptographic key (Pitchenik: column 2 hne 40 - column 
3 line 28; column 4 lines 32 - 67; column 3 line 60 - column 4 line 10: the key pair). 

11, As per claim 7, Pitchenik as modified discloses the method of claim 3. Pitchenik as 
modified further discloses wherein said step of decrypting said encrypted first random number 
results in a first value, and further comprising the step of disallowing said computing device to 
communicate with other computing devices on said network if said first value is a null value 
(Pitchenik: column 4 line 33 - column 5 hne 4: the authentication technique can be applied to 
both parties). 
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12. As per claim 8, Pitchenik as modified discloses the method of claim 7. Pitchenik as 
modified further discloses wherein allowing said conqjuting device to communicate with other 
computing devices on said network if said first value is not a null value (Pitchenik: column 4 line 
33 - colunm 5 line 4: the authentication technique can be applied to both parties). 

13. As per claim 9, Pitchenik as modified discloses the method of claim 7. Pitchenik as 
modified further discloses the method comprising the step of decrypting said second challenge 
with a network receive cryptographic key (Pitchenik: column 2 Une 40 - column 3 line 28; 
column 4 lines 32 - 67; column 3 line 60 - column 4 line 10: the key pair), 

14. As per claim 10, Pitchenik as modified discloses the method of claim 8. Pitchenik as 
modified further discloses the method conq)rising the step of decrypting said encrypted second 
random number with a second secret cryptographic key (Pitchenik: column 2 line 40 - column 3 
line 28; column 4 lines 32 - 67; column 3 line 60 - column 4 line 10). 

15. As per claim 1 1, Pitchenik as modified discloses the method of claim 10. Pitchenik as 
modified further discloses wherein said second secret cryptographic key is stored within said 
physical token (Pitchenik: column 2 line 40 - column 3 line 28; column 4 lines 32 - 67; column 
3 line 60 - column 4 line 10), 
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16. As per claim 25, Pitchenik as modified discloses the method of claim 21. Pitchenik as 
modified further discloses the method comprising the steps of: receiving a third challenge from 
said confuting device, wherein said third challenge comprises said second random number 
encrypted with a second secret cryptographic key (Pitchenik: column 2 Une 34 - column 3 line 
29); decrypting said encrypted second random number with said first secret cryptographic key 
(Pitchenik: column 2 line 34 - column 3 line 29); and comparing said decrypted second random 
number to said second random number to determine if a match exists (Pitchenik: column 2 line 
34 - column 3 line 29). 

17. As per claim 26, Pitchenik as modified discloses the method of claim 25. Pitchenik as 
modified further discloses wherein if a match exists between said decrypted second random 
number and said second random number, allowing said computing device to communicate with 
other computing device on said network, otherwise if a match does not exist, disallowing said 
computing device to communicate with other computing devices on said network (Pitchenik: 
column 2 line 34 - column 3 line 29). 

18. As per claim 27, Pitchenik as modified discloses the method of claim 25. Pitchenik as 
modified further discloses the method conq)rising the step of decrypting said third challenge with 
a network receive cryptographic key (Pitchenik: column 2 line 34 - column 3 line 29). 
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19. As per claim 28, Pitchenik discloses the method of claim 25. Pitchenik further discloses 
wherein said second secret cryptographic key is stored within said physical token (Pitchenik: 
column 2 line 34 - column 3 Une 29 and column 3 line 60 - column 4 line 10). 

20. Claims 13 and 14 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Pitchenik in view of Eberhard and further in view of Shteyn U.S. Pub. No. 20040203590 
(hereinafter Shteyn). 

21 . As per claim 13, Pitchenik discloses a communications system conqDrising: a number of 
computing devices, and at least one authentication device, wherein each cUent device or 
authentication device includes a removable unique tamper-resistant physical token comprising a 
random number generator, a unique secret cryptographic key, and a unique serial number 
(Pitchenik: column 2 line 40 - column 3 line 28; column 4 lines 32 - 67; column'3 line 60 - 
column 4 line 10). Pitchenik does not explicitly disclose generating a second random number 
where the second random number is different from the first random number. However, Eberhard 
discloses both devices generate its own random number and transmit random numbers to each 
other (Eberhard: column 1 line 66 - column 2 line 4 and column 3 line 45 - column 4 hne 2). It 
would have been obvious to one having ordinary skill in the art to generate different random 
numbers when two devices try to authenticate each other. Therefore, it would have been obvious 
to one having ordinary skill in the art at the time of appHcant's invention to combine the 
teachings of Eberhard within the system of Pitchenik because using two random numbers allows 
both devices to exclusively authenticate each other. Pitchenik as modified does not expUcitly 
disclose wherein each tamper-resistant physical token is removable. However, Shteyn discloses 
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using a dongle installed via a USB to secure communications in a wireless network (Shteyn: 
[0027]). It would have been obvious to one having ordinary skill in the art to store identifications 
information and cryptographic key into the hardware key while authentication takes place 
between a mobile terminal and an access point. Therefore, it would have been obvious to one 
having ordinary skill in the art at the time of applicant's invention to combine the teachings of 
Shteyn within the combination of Pitchenik-Eberhard because dongle is well known in the art for 
providing security parameters within network. 

22. As per claim 17, Pitchenik as modified discloses the system of claim 13. Pitchenik as 
modified further discloses wherein each tamper-resistant physical token is installed via a USB 
interface. Shteyn discloses using a dongle installed via a USB to secure communications in a 
wireless network (Shteyn: [0027]). It would have been obvious to one having ordinary skill in 
the art to store identifications information and cryptographic key into the hardware key while 
authentication takes place between a mobile terminal and an access point. Therefore, it would 
have been obvious to one having ordinary skill in the art at the time of applicant's invention to 
combine the teachings of Shteyn within the combination of Pitchenik-Eberhard-Kimura because 
dongle is well known in the art for providing security parameters within network. 

23. Claims 14-16, and 18 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Pitchenik in view of Eberhard and further in view of Shteyn and further in view of Kimura U.S. 
Pub. No. 20010048744 (hereinafter Kimura). 
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24. As per claim 14, Pitchenik as modified discloses the system of claim 13. Pitchenik as 
modified does not explicitly disclose wherein each client device or authentication device further 
includes a wireless communications transceiver to communicate on a wireless network. 
However, it would have been obvious to one having ordinary skill in the art to apply the 
authentication method to any communication environment including wireless network. 
Alternatively, Kimura discloses access point authentication method and applying challenge 
response and random numbers to authenticate mobile terminals within wireless LAN that 
complies with IEEE 802. 1 1 (Kimura: [0038]-[0040]). It would have been obvious to one having 
ordinary skill in the art at the time of applicant's invention to apply the authentication technique 
to any communication system. Therefore, it would have been obvious to one having ordinary 
skill in the art at the time of applicant's invention to combine the teachings of Kimura within the 
combination of Pitchenik-Eberhard because it prevents unauthorized access from mobile stations 
of malicious intruders in a radio-based wireless LAN network. 

25. As per claim 15, Pitchenik as modified discloses the system of claim 14. Pitchenik as 
modified further discloses wherein said wireless network is Wi-Fi network (Kimura: figure 5 and 
[0004], [0035]-[0040]). 

26. As per claim 16, Pitchenik as modified discloses the system of claim 15. Pitchenik as 
modified further discloses wherein said authentication device is an access point (Kimura: [0039]- 
[0040] and figure 2). 
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27. As per claim 18, Pitchenik as modified discloses the system of claim 16. Pitchenik as 
modified further discloses wherein said access point includes a database file comprising said 
serial numbers and secret cryptographic keys associated with said tokens (Pitchenik: column 3 
line 60 - column 4 line 10, Kimura: [0004], [0035]-[0040]). 

Response to Arguments 

28. Applicant's arguments with respect to claims 1-11 and 13-28 have been considered but 
are moot in view of the new ground(s) of rejection. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Shin-Hon Chen whose telephone number is (571) 272-3789. The 
examiner can normally be reached on Monday through Friday 8:30am to 5:30pni 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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